gss_export_sec_context/gss_import_sec_context
Love Hörnquist Åstrand
lha at kth.se
Sun Jul 26 01:36:27 MDT 2009
>> gss_store_cred() might help you (not implemented in heimdal yet)
>>
>> There is no protable way to do this that works for all mechs.
>>
>> gss_krb5_copy_ccache() + gss_krb5_import_cred() will partly get you
>> there.
>
> And how do I create a blob that I can pass between the process
> that does the gss_krb5_copy_ccache() and the process that will do
> the gss_krb5_import_cred()?
Pull out the krbtgt and marshall the krb5_creds with krb5_store_creds,
decode with krb5_ret_creds() in the reciving end.
>> If you want a gss_export_cred() we should probably make one.
>
> gss_export_cred() and gss_import_cred() would be very useful.
You plan to cross security domain (uid/session/etc ?)
Love
More information about the samba-technical
mailing list